Hacker News with Generative AI: Threat Intelligence

Unmasking EncryptHub: Help from ChatGPT and Opsec Blunders (outpost24.com)
This is the second part of Outpost24’s KrakenLabs investigation into EncryptHub, an up-and-coming cybercriminal who has been gaining popularity in recent months and is heavily expanding and evolving operations at the time of writing. We’ve already published one article explaining EncryptHub’s campaigns and TPPs, infrastructure, infection methods, and targets.

Cybersecurity, Cybercrime, Artificial Intelligence, Threat Intelligence

55 points by marcusb 20 days ago | 16 comments

Cradle – Open-Source Collaborative Threat Intelligence Hub (cradle.sh)

Cybersecurity, Threat Intelligence, Open Source, Collaboration

37 points by nofool 42 days ago | 5 comments

Multiple Russia-aligned threat actors actively targeting Signal Messenger (cloud.google.com)
Google Threat Intelligence Group (GTIG) has observed increasing efforts from several Russia state-aligned threat actors to compromise Signal Messenger accounts used by individuals of interest to Russia's intelligence services.

Cybersecurity, Russia, Messaging Apps, Espionage, Threat Intelligence

836 points by karel-3d 66 days ago | 289 comments

Google: 70% of exploited flaws disclosed in 2023 were zero-days (bleepingcomputer.com)
Google Mandiant security analysts warn of a worrying new trend of threat actors demonstrating a better capability to discover and exploit zero-day vulnerabilities in software.

Cybersecurity, Zero-Day Vulnerabilities, Google, Software Security, Threat Intelligence

8 points by thepuppet33r 191 days ago | 0 comments

Threat actor abuses Cloudflare tunnels to deliver remote access trojans (proofpoint.com)

Cybersecurity, Threat Intelligence, Cloud Security

320 points by luu 268 days ago | 163 comments

CISA join ASD to release advisory on PRC State-Sponsored Group, APT 40 (cisa.gov)